Change8

v3.6.14

📦 traefikView on GitHub →
🐛 9 fixes1 deprecations🔧 8 symbols

Summary

This release focuses on bug fixes across various components including ACME, Docker provider, Kubernetes integration, and middleware functionality. It also introduces a deprecation for an option in the ForwardAuth middleware.

Migration Steps

  1. Review the migration guide at https://doc.traefik.io/traefik/v3.6/migrate/v3/#v3614 for potential necessary changes.

🐛 Bug Fixes

  • Bumped github.com/go-acme/lego/v4 to v4.34.0.
  • Downgraded log level for missing container on inspect in the Docker provider.
  • Made SameSite cookie value case-insensitive for sticky-session and Kubernetes CRD.
  • Kubernetes CRD now honors allowCrossNamespace with chain middleware.
  • Removed untrusted X headers containing underscores in middleware.
  • Sanitized the request URL after stripping the prefix in middleware.
  • Removed map lookup which resulted in an empty basic auth notFoundSecret.
  • Fixed trustForwardHeader behavior on forward auth middleware.
  • Cleaned up and made ForwardAuth logs consistent.

Affected Symbols

[acme][docker][sticky-session][k8s/crd][k8s][middleware][authentication]ForwardAuth.TrustForwardHeader

⚡ Deprecations

  • The ForwardAuth.TrustForwardHeader option is deprecated.